CN106850560A - A kind of method that internet mail sends safely and audits - Google Patents
A kind of method that internet mail sends safely and audits Download PDFInfo
- Publication number
- CN106850560A CN106850560A CN201611215735.1A CN201611215735A CN106850560A CN 106850560 A CN106850560 A CN 106850560A CN 201611215735 A CN201611215735 A CN 201611215735A CN 106850560 A CN106850560 A CN 106850560A
- Authority
- CN
- China
- Prior art keywords
- transmission content
- information
- application program
- encrypted
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/04—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks
- H04L63/0428—Network architectures or network communication protocols for network security for providing a confidential data exchange among entities communicating through data packet networks wherein the data content is protected, e.g. by encrypting or encapsulating the payload
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
- H04L63/083—Network architectures or network communication protocols for network security for authentication of entities using passwords
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/20—Network architectures or network communication protocols for network security for managing network security; network security policies in general
- H04L63/205—Network architectures or network communication protocols for network security for managing network security; network security policies in general involving negotiation or determination of the one or more network security mechanisms to be used, e.g. by negotiation between the client and the server or between peers or by selection according to the capabilities of the entities involved
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Information Transfer Between Computers (AREA)
Abstract
Send the method with audit safely the invention discloses a kind of internet mail, the method includes starting computer, application program is loaded automatically, other all mails are forbidden to send behavior, start mail applications, check mail transmission content, the encryption of mail transmission content, input encrypted ones, log.The method only allows to send mail by application program of the invention, there is provided complete internet mail audit function is carried out to mail transmission content, and Mail Contents are encrypted, and record mail sends related more detailed logging.The present invention can improve the accuracy and security of internet mail audit, and can improve the audit efficiency of internet mail.
Description
Technical field
The invention belongs to computer system security management domain, more particularly to a kind of internet mail sends safely and audits
Method.
Background technology
Using mail communication is carried out to be widely used in working environment, especially internet it is widely available after, people
Enter the transmission of row information commonly using internet mail server, the mode of this transmission information bringing it is convenient
The risk of information leakage is also increased simultaneously, is that mail audit work brings certain difficulty.
Currently, the way of audit mail has two kinds:
A kind of carried out by way of obtaining http network packet and analyzing its form in network exit.Its deficiency
Place is, when HTTP webpage formats change, parsing is susceptible to mistake, and acquisition information excessively easily influences accountability
Can, during by HTTP webpage forwarding by mail, it is impossible to which the attachment content in mail of auditing, HTTP web page contents are easily trapped, peace
Full sex chromosome mosaicism is serious, and the mail of HTTP forms sends the network address that need to every time repeatedly input mail server, and flexibility is poor;
Another kind is that strobe utility is added in mail server.It is disadvantageous in that, it is necessary to increase on mail server
Strobe utility, required relatively costly, mail server is common equipment, and content is more, causes mail audit efficiency relatively low, and nothing
Method clearly knows the specific network address that user uses, very flexible.
In sum, in the prior art, not having one kind can carry while internet mail is accurately and efficiently audited
The method of mail security high, accordingly, it would be desirable to find a kind of method, can accurately, safely, neatly send and internet of auditing
Mail.
The content of the invention
The present invention is the above-mentioned deficiency of the prior art of solution, there is provided the side of a kind of transmission of internet mail safety and audit
Method, sends behavior, there is provided carry out complete interconnection to mail transmission content by forbidding other all mails in addition to the present invention
Net function of auditing emails, and Mail Contents being encrypted, realize internet mail safe and accurate, flexible transmission and
Audit.
In order to solve the above technical problems, the present invention is adopted the following technical scheme that:
A. computer is started, application program is loaded automatically:The automatic loading of application program success, wherein application program is institute of the present invention
The application program stated;
B. mail port and website are disabled:By disabling all mail related ports and website, it is ensured that only allow by the present invention
Application program sends mail;
The mail related port includes:POP3 ports, SMTP ports;
Described POP3 ports, POP is a kind of electronic post office's host-host protocol for Post Office Protocol, and POP3 is it
The 3rd version, be that one simple and the transmission of mail information agreement of practicality;
The website includes:All internet mail websites based on HTTP;
The HTTP is HTTP, is a kind of procotol;
C. mail applications are started:User fills in mail transmission content by starting mail applications, initiates to send mail
Operation;
The mail applications are the subprogram of application program of the present invention;
The mail transmission content includes:E-mail sender, mail recipient, mail CC people, mail BCC people, mail
Theme, message body and annex;
D. mail transmission content is checked:Mail transmission content is compared with the black list information for setting, judges that mail sends
Whether comprising the information for forbidding sending in content.If performing step containing the information for forbidding sending in mail transmission content
g;If not comprising the information for forbidding sending in mail transmission content, performing step e;
The described information for forbidding sending is the information recorded in blacklist;
E. mail transmission content encryption:User chooses whether to need in mail transmission according to the significance level of mail transmission content
Appearance is encrypted.If mail needs encryption, step f is performed, if mail need not be encrypted, perform step g;
F. encrypted ones are input into:User input encrypted ones are encrypted to mail transmission content;
G. log:Record mail sends relevant information;
Described mail relevant information includes:Post time, transmission email computer name, IP address, MAC Address, operation
System, e-mail sender, mail recipient, mail CC people, mail BCC people, mail matter topics, message body and annex.
The beneficial effects of the present invention are:The method that a kind of internet mail of the invention sends safely and audits, can prohibit
Behavior is sent with other mails in addition to the present invention, can audit whole mail transmission contents, including Email attachment and annex
Content is nested with, safe and accurate can all be audited.Additionally, setting can be encrypted to mail transmission content, to ensure that mail sends
Content is safer, effectively prevents confidential information from revealing and spreading by way of sending mail.
Brief description of the drawings
Fig. 1 is the flow chart that mail of the invention sends and audits;
Fig. 2 is the structural representation of the mail transmission auditing system of embodiments of the invention.
Specific embodiment
To make the object, technical solutions and advantages of the present invention become more apparent, with reference to specific embodiments and the drawings,
The present invention is described in further details.
As shown in Fig. 2 as shown in Fig. 2 the internet includes server computer for example in an internet environment
201st, client computer A202 and client computer B203, wherein client computer A202 is to client computer B203
Send mail.
For example, the computer name of client computer A202 is referred to as APC, IP address for 192.168.5.85, MAC Address are
88-9F-FA-FA-3C-E3;
The computer name of client computer B203 is BPC, IP address is 192.168.5.95, MAC Address is 64-27-37-
60-74-C2;
Client computer A202 sends mail to client computer B203, and the relevant information transmission time of mail is " 2016
Tuesday 13 on November 20,:24 ", e-mail sender be test1@163.com, mail recipient be test2@126.com,
Make a copy for artificial test3@126.com, the artificial test4@126.com of BCC, theme is that " please audit:Action in one week converges
Report ", text are for " as inscribed, attachment content is that the action in a week of this project team is reported, and please be audited, and refers to annex.", annex be
" .docx is reported in action in a week ".
As shown in figure 1, a kind of internet mail of the invention sends safely and the method and step of audit is as follows:
A. computer is started, application program loads 101 automatically:Start client computer A202, application program success of the present invention
Automatic loading;
B. mail port and website 102 are disabled:Disabling POP3 ports and SMTP ports, disabling mail.163.com,
The mails such as mail.126.com, mail.qq.com send website, prevent from sending mail by above-mentioned port and website;
C. mail applications 103 are started:Start the mail applications on client computer A202, fill in e-mail sender
For test1@163.com, mail recipient are artificial test2@126.com, the artificial test3@126.com that make a copy for, BCC
Test4@126.com, theme are that " please audit:The report of action in a week ", text are for " as inscribed, attachment content is this project team
Action in one week is reported, and please be audited, and refers to annex.", annex be " action in a week report .docx ", initiate the mail to
Client computer B203;
D. mail transmission content 104 is checked:By e-mail sender be test1@163.com, mail recipient be test2@
126.com, the artificial test3@126.com that make a copy for, the artificial test4@126.com of BCC, theme are that " please audit:One week work
Make content report ", text is for " as inscribed, attachment content is this project team action in week report, please be audited, and refers to annex.”、
Annex is that " .docx is reported in action in a week " and the blacklist for setting are contrasted one by one, wherein, annex and annex are nested interior
Appearance will also be contrasted.If comprising the information in blacklist in above-mentioned mail transmission content, performing log 107;If
Above-mentioned Mail Contents then perform mail transmission content encryption 105 not comprising the information in blacklist;
E. mail transmission content encryption 105:User chooses whether to need to send out mail according to the significance level of mail transmission content
Content is sent to be encrypted.If mail needs encryption, input encrypted ones 106 are performed, if mail need not be encrypted, held
Row log 107;
F. encrypted ones 106 are input into:User input encrypted ones be " 143826 " after, above-mentioned mail transmission content is added
It is close;
G. log 107:Record mail sends relevant information to server computer 201;
Above-mentioned mail sends relevant information to be included:Post time " Tuesday 13 on November 20th, 2016:24 " postal, is sent
Part computer name is referred to as APC, IP address for 192.168.5.85, MAC Address are that 88-9F-FA-FA-3C-E3, operating system are
Windows operating system, e-mail sender are test1@163.com, mail recipient is test2@126.com, it is artificial to make a copy for
Test3@126.com, the artificial test4@126.com of BCC, theme are that " please audit:The report of action in a week ", text
For " as inscribed, attachment content is that the action in a week of this project team is reported, and please be audited, and refers to annex.", annex for " one week work
Content reports .docx ".
By the method it is more accurate, safer, send mail and e-mail messages of auditing for greater flexibility, and mail can be sent out
Send content to be encrypted, greatly improve the accuracy and security of transmission and the audit of mail in internet.
Claims (1)
1. a kind of method that internet mail sends safely and audits, it is characterised in that the method includes the steps of:
A. computer is started, application program is loaded automatically:The automatic loading of application program success, wherein application program is institute of the present invention
The application program stated;
B. mail port and website are disabled:By disabling all mail related ports and website, it is ensured that only allow by the present invention
Application program sends mail;
The mail related port includes:POP3 ports, SMTP ports;
Described POP3 ports, POP is a kind of electronic post office's host-host protocol for Post Office Protocol, and POP3 is it
The 3rd version, be that one simple and the transmission of mail information agreement of practicality;
The website includes:All internet mail websites based on HTTP;
The HTTP is HTTP, is a kind of procotol;
C. mail applications are started:User fills in mail transmission content by starting mail applications, initiates to send mail
Operation;
The mail applications are the subprogram of application program of the present invention;
The mail transmission content includes:E-mail sender, mail recipient, mail CC people, mail BCC people, mail
Theme, message body and annex;
D. mail transmission content is checked:Mail transmission content is compared with the black list information for setting, judges that mail sends
Whether comprising the information for forbidding sending in content, if performing step containing the information for forbidding sending in mail transmission content
g;If not comprising the information for forbidding sending in mail transmission content, performing step e;
The described information for forbidding sending is the information recorded in blacklist;
E. mail transmission content encryption:User chooses whether to need in mail transmission according to the significance level of mail transmission content
Appearance is encrypted, if mail needs encryption, performs step f, if mail need not be encrypted, performs step g;
F. encrypted ones are input into:User input encrypted ones are encrypted to mail transmission content;
The encrypted ones are voluntarily set for user;
G. log:Record mail sends relevant information;
Described mail relevant information includes:Post time, transmission email computer name, IP address, MAC Address, operation
System, e-mail sender, mail recipient, mail CC people, mail BCC people, message body and annex.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611215735.1A CN106850560A (en) | 2016-12-26 | 2016-12-26 | A kind of method that internet mail sends safely and audits |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201611215735.1A CN106850560A (en) | 2016-12-26 | 2016-12-26 | A kind of method that internet mail sends safely and audits |
Publications (1)
Publication Number | Publication Date |
---|---|
CN106850560A true CN106850560A (en) | 2017-06-13 |
Family
ID=59136380
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201611215735.1A Pending CN106850560A (en) | 2016-12-26 | 2016-12-26 | A kind of method that internet mail sends safely and audits |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN106850560A (en) |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109120510A (en) * | 2018-08-01 | 2019-01-01 | 北京奇虎科技有限公司 | E-mail sending method, apparatus and system based on permission control |
CN109474510A (en) * | 2017-12-25 | 2019-03-15 | 北京安天网络安全技术有限公司 | A kind of E mail safety intersects auditing method, system and storage medium |
CN110611608A (en) * | 2019-09-29 | 2019-12-24 | 武汉思普崚技术有限公司 | WEB mail auditing method and system |
CN111162989A (en) * | 2019-12-11 | 2020-05-15 | 杭州迪普科技股份有限公司 | Method and device for processing mail audit log |
CN113506090A (en) * | 2021-07-13 | 2021-10-15 | 远光软件股份有限公司 | Audit data processing method and device, storage medium and electronic equipment |
CN113938311A (en) * | 2021-11-12 | 2022-01-14 | 北京中睿天下信息技术有限公司 | Mail attack tracing method and system |
Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1564167A (en) * | 2004-04-04 | 2005-01-12 | 俞盛 | Method of dealing with refuse mail |
CN101668263A (en) * | 2009-09-25 | 2010-03-10 | 天津市雅浪通讯技术有限公司 | System for receiving and dispatching mail based on short message platform of mobile phone and method for processing mail attachment |
CN103428077A (en) * | 2013-08-22 | 2013-12-04 | 北京明朝万达科技有限公司 | Method and system for safely receiving and sending mails |
CN103746996A (en) * | 2014-01-03 | 2014-04-23 | 汉柏科技有限公司 | Packet filtering method for firewall |
CN103763120A (en) * | 2011-03-09 | 2014-04-30 | 成都勤智数码科技股份有限公司 | Network terminal management method based on SNMP |
CN104202232A (en) * | 2014-08-07 | 2014-12-10 | 北京网康科技有限公司 | Internet email processing method and device |
US9177293B1 (en) * | 2006-07-21 | 2015-11-03 | Cousins Intellectual Properties Llc | Spam filtering system and method |
CN105024979A (en) * | 2014-04-25 | 2015-11-04 | 深圳市星辰帷幄信息技术有限公司 | Method and system for intranet network to audit encrypted mail |
CN105205403A (en) * | 2015-08-20 | 2015-12-30 | 浙江宇视科技有限公司 | Method and system for managing and controlling file data of local area network based on file filtering |
CN106209606A (en) * | 2016-08-31 | 2016-12-07 | 北京深思数盾科技股份有限公司 | A kind of use the method for WEB mail, terminal and system safely |
-
2016
- 2016-12-26 CN CN201611215735.1A patent/CN106850560A/en active Pending
Patent Citations (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN1564167A (en) * | 2004-04-04 | 2005-01-12 | 俞盛 | Method of dealing with refuse mail |
US9177293B1 (en) * | 2006-07-21 | 2015-11-03 | Cousins Intellectual Properties Llc | Spam filtering system and method |
CN101668263A (en) * | 2009-09-25 | 2010-03-10 | 天津市雅浪通讯技术有限公司 | System for receiving and dispatching mail based on short message platform of mobile phone and method for processing mail attachment |
CN103763120A (en) * | 2011-03-09 | 2014-04-30 | 成都勤智数码科技股份有限公司 | Network terminal management method based on SNMP |
CN103428077A (en) * | 2013-08-22 | 2013-12-04 | 北京明朝万达科技有限公司 | Method and system for safely receiving and sending mails |
CN103746996A (en) * | 2014-01-03 | 2014-04-23 | 汉柏科技有限公司 | Packet filtering method for firewall |
CN105024979A (en) * | 2014-04-25 | 2015-11-04 | 深圳市星辰帷幄信息技术有限公司 | Method and system for intranet network to audit encrypted mail |
CN104202232A (en) * | 2014-08-07 | 2014-12-10 | 北京网康科技有限公司 | Internet email processing method and device |
CN105205403A (en) * | 2015-08-20 | 2015-12-30 | 浙江宇视科技有限公司 | Method and system for managing and controlling file data of local area network based on file filtering |
CN106209606A (en) * | 2016-08-31 | 2016-12-07 | 北京深思数盾科技股份有限公司 | A kind of use the method for WEB mail, terminal and system safely |
Non-Patent Citations (1)
Title |
---|
沈坚等: "《开源WEB邮件服务器的应用升级与实现》", 《高职论丛》 * |
Cited By (9)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109474510A (en) * | 2017-12-25 | 2019-03-15 | 北京安天网络安全技术有限公司 | A kind of E mail safety intersects auditing method, system and storage medium |
CN109120510A (en) * | 2018-08-01 | 2019-01-01 | 北京奇虎科技有限公司 | E-mail sending method, apparatus and system based on permission control |
CN110611608A (en) * | 2019-09-29 | 2019-12-24 | 武汉思普崚技术有限公司 | WEB mail auditing method and system |
CN110611608B (en) * | 2019-09-29 | 2022-04-05 | 武汉思普崚技术有限公司 | WEB mail auditing method and system |
CN111162989A (en) * | 2019-12-11 | 2020-05-15 | 杭州迪普科技股份有限公司 | Method and device for processing mail audit log |
CN113506090A (en) * | 2021-07-13 | 2021-10-15 | 远光软件股份有限公司 | Audit data processing method and device, storage medium and electronic equipment |
CN113506090B (en) * | 2021-07-13 | 2024-01-23 | 远光软件股份有限公司 | Audit data processing method and device, storage medium and electronic equipment |
CN113938311A (en) * | 2021-11-12 | 2022-01-14 | 北京中睿天下信息技术有限公司 | Mail attack tracing method and system |
CN113938311B (en) * | 2021-11-12 | 2023-07-25 | 北京中睿天下信息技术有限公司 | Mail attack tracing method and system |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN106850560A (en) | A kind of method that internet mail sends safely and audits | |
US7984100B1 (en) | Email system automatically notifying sender status and routing information during delivery | |
KR101137089B1 (en) | Validating inbound messages | |
US20070100999A1 (en) | Method, system and software for rendering e-mail messages | |
US7509384B1 (en) | Integrated method of ensuring instant messaging security on confidential subject matter | |
US8990315B2 (en) | Sending messages with limited awareness of recipients | |
US20130298232A1 (en) | Messaging security device | |
US20120150965A1 (en) | Mitigating Email SPAM Attacks | |
JP2012511842A (en) | Electronic messaging integration engine | |
CN104518943A (en) | Method and system for e-mail management | |
US9619664B2 (en) | Systems and methods for handling electronic messages | |
EP2824873B1 (en) | Qualified email headers | |
US9654430B2 (en) | Communicating with recipient email server while composing email | |
US20170118149A1 (en) | Deduplication of e-mail content by an e-mail server | |
RU2018123013A (en) | METHOD FOR CERTIFICATION OF AN ELECTRONIC MESSAGE CONTAINING A RECOGNIZED ELECTRONIC SIGNATURE BY A COMMUNICATION OPERATOR | |
US9450899B2 (en) | Systems and methods for messaging and presence modification | |
CN105827518A (en) | Secure cross-domain mail transfer method, device and system | |
US8615554B1 (en) | Electronic mail delivery physical delivery backup | |
US20130191474A1 (en) | Electronic Messaging Recovery Engine | |
US9106601B2 (en) | Selective delivery of content via electronic mail | |
US10341274B2 (en) | Systems methods and computer-readable storage media for messaging and presence modification | |
Mishra et al. | Forensic analysis of e-mail date and time spoofing | |
CN105763533A (en) | Method of using fake mailbox to register APP or log in to website | |
US10181045B1 (en) | Automated email message and document shredding system | |
GB2463532A (en) | Email filtering based upon security information embedded in mail or provided through web based challenge response system |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
RJ01 | Rejection of invention patent application after publication |
Application publication date: 20170613 |
|
RJ01 | Rejection of invention patent application after publication |